PT-2004-2131 · Veritas · Veritas Backup Exec

Published

2004-12-22

Updated

2017-07-11

CVE-2004-1172

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Veritas Backup Exec versions 8.x through 8.60.3877 and versions 9.x through 9.1.4690

Description: A stack-based buffer overflow issue exists in the Agent Browser component, allowing remote attackers to execute arbitrary code by sending a registration request with a long hostname.

Recommendations: For versions 8.x through 8.60.3877, apply Hotfix 68 to resolve the issue. For versions 9.x through 9.1.4690, apply Hotfix 40 to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1172

Affected Products

Veritas Backup Exec

PT-2004-2131 · Veritas · Veritas Backup Exec

CVE-2004-1172

Related Identifiers

Affected Products

References · 14